$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/2FBEB0B0D5B011EC90A8A031C4F9AE02.roa File: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (raw, json) Hash identifier: I6dKEsr0XquVk+g4ftlgsCXZuAsReZBSv18mG+lwUIc= Subject key identifier: EA:7E:85:67:AE:A8:A1:6D:91:E7:10:37:DD:FE:9C:0D:27:28:4C:F0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 021A Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/2FBEB0B0D5B011EC90A8A031C4F9AE02.roa Signing time: Tue 06 Feb 2024 18:46:30 +0000 ROA not before: Tue 06 Feb 2024 18:46:30 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 135042 IP address blocks: 103.207.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:46:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: Feb 6 18:46:30 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c27e86-952d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:07:c5:c3:cb:7c:c6:68:9c:6f:95:25:8b:05: ab:93:f2:9e:98:df:bb:8b:33:03:cd:e4:d1:72:56: ff:06:42:0a:7a:92:31:4e:e3:a2:9c:b3:15:90:85: 51:dd:6c:43:56:e5:86:05:59:70:e4:03:37:f3:84: 53:40:bb:ed:10:77:85:b5:5e:e5:61:1b:4e:e9:98: cf:fc:be:c0:b3:e9:b6:4e:2a:d6:a2:f5:e1:94:09: 6f:e7:b9:de:0c:12:43:7f:82:df:0f:a2:0c:ef:03: 36:52:30:7e:2c:7f:59:c5:21:9e:06:07:d5:b1:76: 30:22:b5:7d:45:8e:35:b1:48:54:fb:2d:8d:fd:5e: 3d:22:59:8d:64:86:9e:4e:0b:62:f9:1a:18:8d:61: 10:3a:79:0c:9c:48:da:99:09:d1:ff:47:3a:8f:cc: cf:88:fc:14:8c:2e:d5:eb:df:75:e6:13:bb:b3:c1: 70:da:b2:44:f6:04:4f:7d:8d:34:ce:b2:cb:bf:d1: 8c:5a:d7:42:85:3e:fa:08:91:84:21:a4:67:8c:29: 55:81:d8:66:70:b1:60:f0:64:8d:4b:c0:03:bd:99: 5e:b3:2a:75:b4:07:5c:fd:1a:d5:44:0b:81:51:2e: a2:56:7b:49:d8:23:cb:6e:c6:cb:51:df:9e:36:6b: a4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:7E:85:67:AE:A8:A1:6D:91:E7:10:37:DD:FE:9C:0D:27:28:4C:F0 X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/2FBEB0B0D5B011EC90A8A031C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.19.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:af:75:ec:0d:4d:92:33:dd:cb:27:f8:9a:88:e7:4a:4c:18: d0:e5:23:71:1f:31:3c:62:6e:86:c5:cb:4b:4f:fb:20:d2:0c: 4e:90:00:e0:ab:6f:2f:d1:6d:8d:a4:c0:a4:34:4e:87:25:0f: 56:a2:7d:0d:5b:26:04:a1:7d:98:32:25:5d:1f:80:f5:d7:c3: 1e:4d:11:8d:13:79:f1:3b:87:cc:40:1e:55:39:3a:54:49:2b: 58:43:c1:0b:56:6f:f1:52:e0:48:0a:94:39:3e:13:89:16:e7: fb:9b:ea:97:24:d3:0a:98:ea:ca:7a:dd:b8:de:32:46:79:c0: b2:6b:ef:f6:10:a2:e8:ed:c9:4d:ca:89:b2:63:43:5e:af:cb: 5a:81:e9:ab:63:6b:f8:fc:bb:ec:f4:cc:10:35:e2:1e:a0:ed: 7c:f6:0e:61:ab:de:64:53:b0:cf:45:a3:bd:4a:1c:4d:1a:0f: c7:4c:86:aa:4a:d2:1c:ca:02:57:81:22:0e:4c:67:b2:90:f4: 12:6e:4c:94:0d:c6:19:04:9f:d9:64:ee:bb:fe:49:72:83:a2: 81:58:a9:a6:91:47:45:9f:e1:03:99:db:5b:cc:2a:99:69:05: c2:b5:59:15:d0:f0:54:b3:0b:5d:b8:58:a5:f1:e4:eb:81:f2: 59:5b:ed:ae -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjQwMjA2MTg0NjMwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyN2U4Ni05NTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQfFw8t8xmicb5UliwWrk/KemN+7izMDzeTRclb/BkIKepIxTuOinLMVkIVR 3WxDVuWGBVlw5AM384RTQLvtEHeFtV7lYRtO6ZjP/L7As+m2TirWovXhlAlv57ne DBJDf4LfD6IM7wM2UjB+LH9ZxSGeBgfVsXYwIrV9RY41sUhU+y2N/V49IlmNZIae Tgti+RoYjWEQOnkMnEjamQnR/0c6j8zPiPwUjC7V69915hO7s8Fw2rJE9gRPfY00 zrLLv9GMWtdChT76CJGEIaRnjClVgdhmcLFg8GSNS8ADvZlesyp1tAdc/RrVRAuB US6iVntJ2CPLbsbLUd+eNmukBQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOp+hWeu qKFtkecQN93+nA0nKEzwMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjJEREQvQjRBMjgzNjI5RTFCMTFFOThFMUU0RTVFQzRGOUFFMDIvMkZCRUIwQjBE NUIwMTFFQzkwQThBMDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnzxMwDQYJKoZIhvcNAQELBQADggEBAC6vdewNTZIz3csn +JqI50pMGNDlI3EfMTxibobFy0tP+yDSDE6QAOCrby/RbY2kwKQ0ToclD1aifQ1b JgShfZgyJV0fgPXXwx5NEY0TefE7h8xAHlU5OlRJK1hDwQtWb/FS4EgKlDk+E4kW 5/ub6pck0wqY6sp63bjeMkZ5wLJr7/YQoujtyU3KibJjQ16vy1qB6atja/j8u+z0 zBA14h6g7Xz2DmGr3mRTsM9Fo71KHE0aD8dMhqpK0hzKAleBIg5MZ7KQ9BJuTJQN xhkEn9lk7rv+SXKDooFYqaaRR0Wf4QOZ21vMKplpBcK1WRXQ8FSzC124WKXx5OuB 8llb7a4= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org